The next OWASP Europe conference will be held in Milan, Italy May 15th-17th 2007.

+

This OWASP Europe conference was held in Milan, Italy May 15th-17th 2007. It was a great success and all the presentations are now online on the [[6th_OWASP_AppSec_Conference_-_Italy_2007/Agenda | agenda page]].

−

+

−

==Call for Papers==

+

−

+

−

Check here for the [[6th_OWASP_AppSec_Conference_-_Italy_2007/CFP|call for papers]]. OWASP is soliciting both experiential and research papers for this conference as we did last year for the OWASP AppSec 2006 conference in Belgium.

+

==Conference Location==

==Conference Location==

−

This year's OWASP AppSec conference in Europe will be held at the Marriott in Milan, Italy from May 15th-17th. More information about this hotel can be found at: http://marriott.com/hotels/travel/milit-milan-marriott-hotel/

+

The 2007 OWASP AppSec conference in Europe was held at the Marriott in Milan, Italy from May 15th-17th. More information about this hotel can be found at: http://marriott.com/hotels/travel/milit-milan-marriott-hotel/

Via Washington, 66

Via Washington, 66

Line 21:

Line 17:

==Agenda and Presentations - May 16th-17th==

==Agenda and Presentations - May 16th-17th==

−

The [[6th_OWASP_AppSec_Conference_-_Italy_2007/Agenda | agenda]] will follow the (current) standard OWASP conference format of two tracks, with opening keynotes and presentations in the main auditorium, split tracks in the middle of the day, and closing presentations back in the main auditorium both days.

+

The [[6th_OWASP_AppSec_Conference_-_Italy_2007/Agenda | agenda]] followed the standard OWASP conference format of two tracks, with opening keynotes and presentations in the main auditorium, split tracks in the middle of the day, and closing presentations back in the main auditorium both days.

−

This conference will include presentations from many different OWASP contributors and leading Application Security professionals, and will include one panel each day.

+

This conference included presentations from many different OWASP contributors and leading Application Security professionals, and included one panel each day. All the conference presentations are online on the agenda page.

==Training Day: Tuesday - May 15th==

==Training Day: Tuesday - May 15th==

−

OWASP has arranged several Application Security one-day training courses which are offered on May 15th, the day prior to the conference. More information about the first tutorial is available here: [[6th_OWASP_AppSec_Conference_-_Italy_2007/Training#T1._Foundations_of_Web_Application_Security_-_One_Day_Course_-_May_15th.2C_2007 | The Foundations of Web Application Security]]. This course provides a great introduction for conference attendees into the fundamental security issues that are highly prevalent in today's Web Applications. The prevalence of such vulnerabilities is why OWASP was formed to raise awareness of and help organizations and individuals eliminate such vulnerabilities from their application code.

+

OWASP arranged for several Application Security one-day training courses which were offered on May 15th, the day prior to the conference. More information about the first tutorial is available here: [[6th_OWASP_AppSec_Conference_-_Italy_2007/Training#T1._Foundations_of_Web_Application_Security_-_One_Day_Course_-_May_15th.2C_2007 | The Foundations of Web Application Security]]. This course provides a great introduction for conference attendees into the fundamental security issues that are highly prevalent in today's Web Applications. The prevalence of such vulnerabilities is why OWASP was formed to raise awareness of and help organizations and individuals eliminate such vulnerabilities from their application code.

−

OWASP has also arranged for a second one-day training course on Web Services Security. Information on this course is available here: [[6th_OWASP_AppSec_Conference_-_Italy_2007/Training#T2._Web_Services_and_XML_Security_-_One_Day_Course_-_May_15th.2C_2007 | Web Services Security]]. The movement towards Web Services and Service Oriented architecture (SOA) paradigms requires new security paradigms to deal with new risks posed by these architectures. This session takes a pragmatic approach towards identifying Web Services security risks and selecting and applying countermeasures to the application, code, web servers, databases, application, and identity servers and related software.

+

OWASP also arranged for a second one-day training course on Web Services Security. Information on this course is available here: [[6th_OWASP_AppSec_Conference_-_Italy_2007/Training#T2._Web_Services_and_XML_Security_-_One_Day_Course_-_May_15th.2C_2007 | Web Services Security]]. The movement towards Web Services and Service Oriented architecture (SOA) paradigms requires new security paradigms to deal with new risks posed by these architectures. This session takes a pragmatic approach towards identifying Web Services security risks and selecting and applying countermeasures to the application, code, web servers, databases, application, and identity servers and related software.

−

A third course is now also available: [[6th_OWASP_AppSec_Conference_-_Italy_2007/Training#T3._Advanced_Asp.Net_Exploits_and_Countermeasures_-_One_Day_Course_-_May_15th.2C_2007 | Advanced Asp.Net Exploits and Countermeasures]] - In this course, you will push ASP.NET to the limit and will be shown how ASP.NET applications and environments can be exploited by skilled attackers.

+

A third course was also available: [[6th_OWASP_AppSec_Conference_-_Italy_2007/Training#T3._Advanced_Asp.Net_Exploits_and_Countermeasures_-_One_Day_Course_-_May_15th.2C_2007 | Advanced Asp.Net Exploits and Countermeasures]] - In this course, you will push ASP.NET to the limit and will be shown how ASP.NET applications and environments can be exploited by skilled attackers.

==Evening Social Event - May 16th==

==Evening Social Event - May 16th==

−

At every conference we have an evening social event the first night. This allows participants to have some unstructured time to mingle with the other attendees. They are always fun and typically attract about half the conference attendees. This year's event will be held nearby and is expected to start around 6:30 or 7. After dinner, many of the participants then wander to the nearest bar/pub and continue sometimes into the wee hours of the morning. In Europe last year some were pretty hard core, staying out till 5 AM. I 'think' the bars in Milan probably close earlier than that :-)

+

At every conference we have an evening social event the first night. This allows participants to have some unstructured time to mingle with the other attendees. They are always fun and typically attract about half the conference attendees. This year's event was held nearby at Ristorante Why Not? which is located at Via S. Michele del Carso, 7, about a five minute walk from the conference, and started around 7. After dinner, many of the participants wandered to the nearest bar/pub and continued sometimes into the wee hours of the morning. In Europe last year some were pretty hard core, staying out till 5 AM. I 'think' the bars in Milan probably close earlier than that :-)

−

==Accomodations==

+

==Accommodations==

−

OWASP has arranged for a room block of 50 rooms at the Marriott in Milan where the conference is being held. The conference rate is 170 Euros / night (including VAT and breakfast) for up to two people per room. Information about the hotel and reservations can be made at: http://marriott.com/hotels/travel/milit-milan-marriott-hotel/. You can also download, fill out, print, and then fax in this [http://www.owasp.org/index.php/Image:OWASP-Marriott-Milan-RegistrationForm.doc registration form].

+

OWASP arranged for a room block of 50 rooms at the Marriott in Milan where the conference is being held. The conference rate is 170 Euros / night (including VAT and breakfast) for up to two people per room. Information about the hotel and reservations can be made at: http://marriott.com/hotels/travel/milit-milan-marriott-hotel/. You can also download, fill out, print, and then fax in this [http://www.owasp.org/index.php/Image:OWASP-Marriott-Milan-RegistrationForm.doc registration form].

−

OWASP is working to arrange other, hopefully less expensive alternate hotel locations near the conference facility as well. This information will be posted as soon as any additional arrangements have been worked out.

+

NOTE: The above room block is being held through April 30th!! After that date, there is no guarantee that rooms at this rate will be available at the Marriott.

+

+

Unfortunately, we were not able to make group rate arrangements at other hotels. However, the following is a list of nearby accommodations that may have availability at lower prices:

+

+

Hotel Washington Milano (4 stars)

+

www.hotelwashington-milano.com

+

Via Washington, 23

+

Ph.+39 02.45.47.30.26

+

+

Hotel Sant'Ambroeus

+

www.hotelsantambroeus.it

+

Viale Papiniano, 14

+

Ph.+39.02.48.00.89.89

+

+

Atahotel De Angeli (4 stars)

+

www.atahotels.it/deangeli

+

Via Trivulzio, 8

+

Ph.+39.02.46.70.31

==Conference Fees==

==Conference Fees==

−

The conference fees are currently as follows, but are still subject to change at the moment:

Agenda and Presentations - May 16th-17th

The agenda followed the standard OWASP conference format of two tracks, with opening keynotes and presentations in the main auditorium, split tracks in the middle of the day, and closing presentations back in the main auditorium both days.

This conference included presentations from many different OWASP contributors and leading Application Security professionals, and included one panel each day. All the conference presentations are online on the agenda page.

Training Day: Tuesday - May 15th

OWASP arranged for several Application Security one-day training courses which were offered on May 15th, the day prior to the conference. More information about the first tutorial is available here: The Foundations of Web Application Security. This course provides a great introduction for conference attendees into the fundamental security issues that are highly prevalent in today's Web Applications. The prevalence of such vulnerabilities is why OWASP was formed to raise awareness of and help organizations and individuals eliminate such vulnerabilities from their application code.

OWASP also arranged for a second one-day training course on Web Services Security. Information on this course is available here: Web Services Security. The movement towards Web Services and Service Oriented architecture (SOA) paradigms requires new security paradigms to deal with new risks posed by these architectures. This session takes a pragmatic approach towards identifying Web Services security risks and selecting and applying countermeasures to the application, code, web servers, databases, application, and identity servers and related software.

A third course was also available: Advanced Asp.Net Exploits and Countermeasures - In this course, you will push ASP.NET to the limit and will be shown how ASP.NET applications and environments can be exploited by skilled attackers.

Evening Social Event - May 16th

At every conference we have an evening social event the first night. This allows participants to have some unstructured time to mingle with the other attendees. They are always fun and typically attract about half the conference attendees. This year's event was held nearby at Ristorante Why Not? which is located at Via S. Michele del Carso, 7, about a five minute walk from the conference, and started around 7. After dinner, many of the participants wandered to the nearest bar/pub and continued sometimes into the wee hours of the morning. In Europe last year some were pretty hard core, staying out till 5 AM. I 'think' the bars in Milan probably close earlier than that :-)

Accommodations

OWASP arranged for a room block of 50 rooms at the Marriott in Milan where the conference is being held. The conference rate is 170 Euros / night (including VAT and breakfast) for up to two people per room. Information about the hotel and reservations can be made at: http://marriott.com/hotels/travel/milit-milan-marriott-hotel/. You can also download, fill out, print, and then fax in this registration form.

NOTE: The above room block is being held through April 30th!! After that date, there is no guarantee that rooms at this rate will be available at the Marriott.

Unfortunately, we were not able to make group rate arrangements at other hotels. However, the following is a list of nearby accommodations that may have availability at lower prices:

Note: To save on processing expenses, all fees paid for the OWASP conference are non-refundable. OWASP can accomodate transfers of registrations from one person to another, if such an adjustment becomes necessary.